Last Updated: 1st January 2025

This Privacy Policy describes how NomNom Services LTD ("we," "us," or "our") collects, uses, stores, and protects your personal data when you use NomNom POS, our Point of Sale (POS) application for restaurants and bars. This policy is compliant with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

By using NomNom POS, you agree to the collection and use of your data as described in this policy.

1. Information We Collect

1.1 Personal Data

To provide our services, we collect the following personal data:

• User Account Information: Name, email address, and login credentials for account authentication.

• Business Information: Restaurant/bar details, employee data (if applicable), and transaction records.

• Session Data: IP addresses, device information, and login sessions for security and operational purposes.

1.2 Non-Personal Data

We collect anonymized analytics data to improve app performance, including:

• Crash reports

• Performance metrics

• Feature usage statistics

2. How We Use Your Data

We use your personal data for the following purposes:

• To provide and maintain NomNom POS.

• To authenticate users and secure accounts.

• To process transactions and generate reports.

• To monitor app performance and fix issues.

• To comply with legal obligations.

3. Data Storage & Security

• Location: User data is stored on Amazon Web Services (AWS) servers in the United States and the European Union.

• Retention: We retain personal data only as long as necessary for business operations or legal requirements.

• Security Measures: We implement encryption, access controls, and regular security audits to protect your data.

4. Data Sharing & Third Parties

We do not sell or share your personal data with third parties for marketing purposes. However, we may share data with:

• Service Providers: AWS (hosting), analytics tools (for app performance).

• Legal Compliance: If required by law (e.g., court orders, tax authorities).

5. Your GDPR Rights

Under GDPR, you have the right to:

• Access your personal data.

• Correct inaccurate data.

• Delete your data (where applicable).

• Restrict or object to processing.

• Request data portability.

To exercise these rights, email us at: privacy@nomnom.co.ke.

6. Changes to This Policy

We may update this Privacy Policy periodically. We will notify users of significant changes via email or in-app notifications.

7. Contact Us

For any privacy-related concerns, contact:
NomNom Services LTD
Email: privacy@nomnom.co.ke

This policy ensures compliance with GDPR and other relevant regulations while maintaining transparency with our users.